Criminal hackers have penetrated the networks of almost 2,500 companies and government agencies in a coordinated campaign that began 18 months ago and continues to steal email passwords, login credentials, and other sensitive data to this day, a computer security company said.

It looks like filtering and watching out-going traffic is becoming more and more important.
IMHO rules indiscriminately allowing out all traffic like pass out quick on egress should be retired

__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump